Privacy Policy
We ask you to carefully read this Privacy Policy, which describes the use we make of the data that you provide us, always in accordance with the requirements of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016 (RGPD), in Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights and other corresponding regulations that may be applicable. Our goal is transparency in the information provided for its proper understanding by you as a user. However, if after reading it you have any questions, you can always contact us through any of the communication channels made available to you and we will clarify them for you.
I. RESPONSIBLE FOR THE TREATMENT
Contact information of the person responsible: SAFETROOP TECHNOLOGIES, S.L. (hereinafter “SafeTroop”), with CIF B44925204 and registered office at Carrer Espinoi 8/10 Local 1, CP 08024 (Barcelona).
Contact information for Data Protection: you can contact us at the postal address indicated above and/or via email: info@safetroop.com.
II.- PRINCIPLES IN ACCORDANCE WITH THE EUROPEAN DATA PROTECTION REGULATION
We undertake to process the personal data (hereinafter the “data”) provided in accordance with the following principles included in the General Data Protection Regulation (GDPR):
- Legality: We will only collect your Personal Data for specific, explicit and legitimate purposes, and we will not process your Personal Data in a manner incompatible with the aforementioned purposes.
- Legality: in accordance with article 6 of the General Data Protection Regulation, your personal data will be managed as long as you express your express consent for the processing of said data as a form of externalization of your will and free and informed consent. SYour personal data may be necessary to formalize a contract, agreement or service, to which the interested party is a party, to comply with legal obligations, to protect vital interests of the interested party and another natural person, to fulfill a mission of public interest or in the exercise of public powers conferred on the data controller or that satisfies the legitimate interests pursued by the data controller when these do not violate the fundamental rights and freedoms of the interested party or the protection of personal data of the interested party.
- Loyalty and transparency: in accordance with article 5 of the General Data Protection Regulation as a manifestation of transparency and proof of this is that the interested party is informed of the existence of the processing operation and its purposes.
- Data minimization: we limit the collection of personal data to what is strictly relevant and necessary for the purposes for which it was collected.
- Limitation of Purpose: We will only collect your personal data for specific, explicit and legitimate purposes, and which we maintain in the way we process it.
- Accuracy: We will keep your personal data accurate and up to date.
- Data Security: we apply appropriate technical and organizational measures to guarantee the appropriate level of security taking into account the risks and nature of the data in order to prevent it from being disclosed or unauthorized personnel from accessing it, or against any loss. or alteration. In short, any form of illicit treatment.
- Any person who, having generated their consent for the collection of data, wishes to request any management regarding the treatment, is recognized and may exercise: the right of access, rectification, opposition, deletion, limitation of treatment, portability and not to be subject of individualized decisions. Its exercise will be free and said request will be corrected within a period of one month to be extended for another two months taking into account exceptional circumstances such as, for example, the number of requests, complexity, or others of a similar nature.
- Principle of limitation of the conservation period: the data will be kept for the time necessary and for the purposes of the treatment without undue delay, and during which, the data of the users and clients will be available to them when they request it.
III.-USER CONSENT:
Completing our registration form, prior acceptance of this Privacy Policy, implies unequivocal consent, on the part of the user, to the automated processing of data in accordance with the privacy conditions of the Website.
The data collected is that necessary to respond to your request for information or, in the case of contracting the service of one of the SafeTroop applications, being adequate, relevant and not excessive in relation to the specific scope and purposes.
As indicated in the Legal Notice, the privacy of app users is assured. You can only be tracked, geolocated or monitored if you activate the alert signal, and no location can be tracked by mere access to the applications.
Notwithstanding the above, said consent may be revoked at any time by the interested party, unsubscribing by any of the means made available to the user. In the case of contracting the service, you must follow the channels made available to process the cancellation of the service in order to process the data from the moment of said cancellation, as well as the conservation and/or blocking of the data. given the characteristics of the emergency services that are managed through the different applications.
IV.- PURPOSES OF DATA PROCESSING.
What use will we give to the personal information we use?:
- Respond to user requests for information through the Web.
- In case of contracting the service through any of the SafeTroop applications, for the proper administrative management and monitoring of said service, as well as the management of billing and collection thereof.
We collect two types of data and information from Users.
- The first type is de-identified and non-identifiable information belonging to users, which may be collected through your use of the site (“safetroop.com”). We do not know the identity of a user from whom non-personal information was collected. This information may include aggregated usage data and technical information provided by the device, both software and hardware (such as the type of browser and operating system used by the device, language preferences, access time, etc.). .), in order to improve the functionality of our Site. Additionally, we also collect information about your activity on it (such as pages visited, web browsing, clicks, actions, etc.).
- The second type of information is Personal Information, which is individually identifiable information, that is, information that identifies a person or can, without undue difficulty, identify a person. This information includes:
• Device Information: We collect Personal Information from your device. Such information includes geolocation data, IP address, unique identifiers (such as MAC addresses and UUIDs), and other information related to your activity on the Site.
• Name, surname, entity, company or area/department name and email.
• Registration information: When you register on our Site you will be asked to provide us with certain information, such as your first and last name, your email or postal address and other information.
On the other hand, we will only send you commercial communications, as long as they are of interest to you, with your prior authorization, which you can provide us through the corresponding box established for this purpose, or if you contract any of our applications, covered in article 21. of the LSSICE, unless you indicate otherwise by exercising your right to object to receiving this type of communications.
Restricted access area policy for clients
If you subscribe to one of the SafeTroop applications, it will facilitate the user who registers to enter the necessary access data, these being the account name, usernames and passwords. For security reasons, the user must change the password immediately, at the latest the first time they access the service. The user will be responsible in all cases for the custody of their access codes, so any damages that may arise from improper use of the same, as well as its loss or any other circumstance that may arise, will be their sole responsibility. pose a risk of access and use by unauthorized third parties. Users must immediately notify SafeTroop so that it can proceed to block and replace it.
The data entered by users must be exact, current, truthful and will be processed and treated in compliance with current legislation on the protection of personal data.
V.- HOW LONG WILL WE KEEP YOUR DATA?
The data will be kept for the period essential for the specific purpose, whether to provide information to the user, or to manage the service in the event of contracting one of the applications. In the second case, once the user unsubscribes and the data is no longer necessary for the purpose for which it was collected, and as long as the user’s consent is not available for its conservation, we will keep their data blocked. during the prescription periods of the obligations that may have arisen from the treatment and/or the applicable legal periods, taking into account in any case that we find data that may be necessary in the investigation of a punishable act, remaining at the disposal of the competent authorities, for the attention of possible responsibilities arising from the treatment.
Data blocking, in accordance with article 17.3 GDPR, is understood to be the right of “retention” as an exception to the obligation to delete. This means that the data will not be used or accessible to anyone, and that it will only be used in the event that there is any legal requirement or claim of responsibilities in relation to them. After the legal prescription period has passed, in each case it will be definitively eliminated.
VI.-LEGITIMATION
We process your data on the legal basis of your consent.
In any case, you will have full rights over your personal data and the use thereof and may exercise them at any time, with the company being obliged to respond within one month, and must be duly justified if the exercise does not proceed. of such right.
The personal data requested is mandatory to contact you and be able to respond to the request you send us. Likewise, failure to provide the requested personal data or failure to accept this privacy policy implies the impossibility of processing the requests made on the website.
VII.- RECIPIENTS
To whom do we transfer your data?
SafeTroop will not transfer your data without your express authorization, with the exceptions indicated below.
Only for the management of certain services, natural or legal persons other than the Controller may have access to the information collected.
There may be access to data by providers, such as web hosting, which in any case will not be considered, for the purposes of current data protection regulations, as communication or transfer of data, given that the requirements are complied with at all times. requirements of Article 28 of the GDPR regarding contractual regulation with such suppliers.
In any case, these providers who have the status of Data Processors undertake before SafeTroop to adopt the technical and organizational measures that are necessary to comply with the security commitment in the processing of data, thus protecting the confidentiality, integrity and availability of these.
Outside of the aforementioned cases, the data will not be transferred in any case, except to competent Public Organizations and State Security Forces and Bodies, due to the service provided through the different applications, or at the request of these Organizations.
They may also be transferred in compliance with a legal provision, to the Tax Agency, Judges and Courts, when there is a legal obligation to provide them.
VIII.- DATA PROTECTION RIGHTS
How can rights be exercised?
We inform you that you may exercise your rights of access, rectification, opposition, deletion, limitation of processing and portability by writing to the Controller at the address indicated above or to the email address : info@safetroop.com.
We also remind you that, if you are a client, you can revoke your consent or oppose the sending of commercial communications by any means and at any time, by sending an email to the aforementioned address.
If you consider that your request has not been handled correctly or your data is not being processed appropriately, you can direct your complaints to the Agencia Española de Protección de Datos, control body of the matter in Spain.
Below, we provide you with expanded information about the aforementioned rights, with direct access to their exercise using the links of the Spanish Data Protection Agency:
A) RIGHT OF ACCESS
Article 15 of the General Data Protection Regulation recognizes the right of the interested party to know whether or not their personal data is being processed and the purposes of the processing, the categories of data, the recipients, the origin of the data, the conservation period. and the criteria to determine said period. Thus, the data controller will provide a copy of the personal data being processed in electronic format upon submission of the request.
They may also request from the person responsible: rectification, deletion or limitation of data and processing.
In order to make it easier for the user to exercise this right, we provide the form that you must complete for your request through the following link:
- https://www.aepd.es/media/formularios/formulario-derecho-de-acceso.pdf
B) RIGHT OF RECTIFICATION AND DELETION
Articles 16 and 17 of the General Data Protection Regulation establish in matters of rectification and deletion of personal data that the client or user requests the rectification of their personal data because they consider them to be inaccurate or for them to be completed or deleted because they are not necessary. for the purposes for which they were collected and processed.
In order to make it easier for the user to exercise this right, we provide the form that you must complete for your request through the following link:
- https://www.aepd.es/media/formularios/formulario-derecho-de-rectificacion.pdf
- https://www.aepd.es/media/formularios/formulario-derecho-de-supresion.pdf
C) RIGHT TO LIMITATION OF TREATMENT
The interested party will have the right to obtain from the controller the limitation of data processing whenever he or she disputes the accuracy of the personal data. That is, the data may only be processed, with the exception of its conservation, with the consent of the interested party, for the exercise or defense of claims, to protect the rights of another natural or legal person or for reasons of public interest of the Union or of a particular Member State. In addition, this will be informed by the person responsible before lifting said limitation.
In order to make it easier for the user to exercise this right, we provide the form that you must complete for your request through the following link:
- https://www.aepd.es/media/formularios/formulario-derecho-de-limitacion.pdf
D) RIGHT TO DATA PORTABILITY
Article 20 of the General Data Protection Regulation recognizes the right of the interested party to receive the personal data that concerns him, that is, it is transmitted directly from controller to controller whenever technically possible, in a structured format, commonly used and read. mechanically without being prevented by the person responsible to whom it was provided, when the consent has been expressly externalized or under contract.
In order to make it easier for the user to exercise this right, we provide the form that you must complete for your request through the following link:
- https://www.aepd.es/media/formularios/formulario-derecho-de-acceso.pdf
IX.-MINORS
The contents of the Website are not directed to minors under 18 years of age. Likewise, and in the specific case of the data that the user provides, only users who are 14 years of age or older can grant their free consent for the processing of said data.
In any case, SafeTroop will take all possible measures to verify the age of users, but cannot be held responsible for any non-compliance in this regard.
X.-SAFETY LEVEL
SafeTroop will implement the necessary technical and organizational security measures to guarantee the security of personal data in accordance with the provisions of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016 (GDPR), thus avoiding loss, alteration and unauthorized access to them.
The user, through the Web and App, will have available at all times a detailed description of the specific measures adopted.
In any case, and if despite complying with all the necessary security measures, the Website and/or any of the Apps suffer a security breach that may affect their legitimate interests or rights, SafeTroop undertakes to inform within the period maximum of 72 hours to the Control Authority, in this case the Spanish Data Protection Agency, as established by the regulations, and, in the shortest period of time possible, to all users who may have been affected.
In the event that the user accesses a third-party website from the SafeTroop service itself, it cannot under any circumstances guarantee their security, and is therefore exempt from all liability in the event of damage suffered by the user due to the use of the service. website or link in question. This Privacy Policy applies exclusively to the SafeTroop Website and Apps, and does not apply to any other site that the user accesses through links other than the Controller or through any other Internet channel.
XI.- CONFIDENTIALITY
The personal data that may be collected will be treated with absolute confidentiality, with SafeTroop committing to maintain secrecy regarding the same and guaranteeing the duty to keep it, adopting all necessary measures to prevent its alteration, loss and unauthorized treatment or access, in accordance with the established in the applicable legislation.
To this end, SafeTroop guarantees that it will maintain the corresponding confidentiality commitments signed with any person involved in any phase of the processing of the personal data collected.
XII.-INTERNATIONAL DATA TRANSFERS
International Data Transfer is understood to be the communication of your personal data to countries located outside the European Union, and more specifically outside the European Economic Area (EEA). There are exceptions from countries outside this European area that are not considered an international transfer as the recipients are countries that the European Data Protection Commission considers appropriate for complying with European data protection standards.
In the event that Safetroop transfers personal information outside the EEA, either because the data storage is hosted on a server outside the borders of the EEA, or for any other reason, it is ensured that the corresponding contracts will be signed and/or accepted of the Data Processor, as well as ensuring that the State where the information is hosted is within the countries considered safe by the European Commission on Data Protection, in which case it will not be considered an International Data Transfer, or, Otherwise, the regulatory contractual clauses of said international transfer are included, ensuring that the provider that may host or process personal information complies with the minimum security standards and principles included in the RGPD.
XIII.-RESPONSIBILITY
The user will be solely responsible for completing the forms with false, inaccurate, incomplete or outdated data. Please inform us of any changes or errors in your personal data as soon as possible by contacting us at the Data Protection Contact Point: info@safetroop.com.
We will take reasonable steps to ensure that any incorrect information about your data is removed or amended.
XIV.- MODIFICATION OF THE PRIVACY POLICY
The requirements of this Privacy Policy complement, and do not replace, any other requirements under applicable data protection legislation. In case of contradiction between what is included in this Policy and the requirements in the applicable data protection regulations, the latter will have priority.
SafeTroop reserves the right to modify its Privacy Policy, according to its own criteria, or motivated especially by changes in the Service, Website, Apps, or by legislative, jurisprudential or doctrinal changes of the Spanish Data Protection Agency.
Cualquier modificación de la Política de Privacidad será publicada con al menos diez días de antelación antes de su efectiva aplicación. When this occurs, we will notify you of any changes and ask you to re-read the most recent version of our Privacy Policy and confirm your acceptance. You can also check this Policy periodically on our Website and Apps, where it will be visible.